CN108111308A - One kind is based on the encrypted industry internet communication encryption method of dynamic random - Google Patents

One kind is based on the encrypted industry internet communication encryption method of dynamic random Download PDF

Info

Publication number
CN108111308A
CN108111308A CN201711416190.5A CN201711416190A CN108111308A CN 108111308 A CN108111308 A CN 108111308A CN 201711416190 A CN201711416190 A CN 201711416190A CN 108111308 A CN108111308 A CN 108111308A
Authority
CN
China
Prior art keywords
key
random number
communication
dynamic
random
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201711416190.5A
Other languages
Chinese (zh)
Inventor
李菲
吕建民
吴飞
张文平
王迎彬
张楠
郭青
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
BEIJING CONTROL TECHNOLOGY Co Ltd
Original Assignee
BEIJING CONTROL TECHNOLOGY Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by BEIJING CONTROL TECHNOLOGY Co Ltd filed Critical BEIJING CONTROL TECHNOLOGY Co Ltd
Priority to CN201711416190.5A priority Critical patent/CN108111308A/en
Publication of CN108111308A publication Critical patent/CN108111308A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/14Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using a plurality of keys or algorithms
    • H04L9/16Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using a plurality of keys or algorithms the keys or algorithms being changed during operation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/0618Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation
    • H04L9/0631Substitution permutation network [SPN], i.e. cipher composed of a number of stages or rounds each involving linear and nonlinear transformations, e.g. AES algorithms
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0869Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/12Transmitting and receiving encryption devices synchronised or initially set up in a particular manner

Abstract

The invention discloses one kind based on the encrypted industry internet communication encryption method of dynamic random, it is related to industry internet communication field.This method generates key using dynamic random mode, in communication both ends clocked flip dynamic key production process;Both ends communicate in locally generated random number, and carries out random number exchange, makes the random number that communication both ends are owned by locally generated random number and other side generates;Both ends communicate according to two random numbers, by key schedule, generates identical key;Both ends communicate in communication process, AES encryption and decryption is carried out using identical key to data message.The data stochastic and dynamic variation of present invention generation key, key only local store, not in transmission over networks, effectively prevent the risk of transmission key in network, enhance communication security;Secondly, key effectively prevents the key leakage hidden danger that human factor is brought without human configuration management.

Description

One kind is based on the encrypted industry internet communication encryption method of dynamic random
Technical field
The present invention relates to the industry internet communications field, be related to it is a kind of randomly generate, the communication of dynamic interaction, cipher key calculation Encryption method specifically, refers to a kind of based on the encrypted industry internet communication encryption method of dynamic random.
Background technology
Under industry 4.0, the overall background of made in China 2025, the Chinese industrial level of informatization steps up, industrial information Safety is more important to the importance of development of manufacturing.Internet communication equipment, generally by interchanger, router, optical transmitter and receiver group Into these equipment complete the functions such as packing, unpacking, routing, the signal conversion of data, and in communication process, data are generally adopted With the conventional cryptographies mode such as AES, DES, RSA, encryption intensity depends on key length, if improving the security of communication data, Special equipment must be used, increases considerably the length (reference paper 1 of key:《Cipher scheme study》, Zhang Xiaofeng, Fan Qi China, Cheng Hongbin etc.,《Computer technology and development》, 2006.2).Current industrial internet communication is general only using communication apparatus Focus on industrial environment safety, for data communication mostly only with conventional cryptography mode, key length is shorter, it is impossible to reach high series According to the requirement of safety.
For protect factory and industrial equipment from unauthorized access, sabotage, spy and malicious attack are, it is necessary to industry Equipment product safe to use or security solution.Network communication is key link safe involved in informatization process, The encryption communication method of research and development safety is needed, enhances the security of communication process, has to the data message transmitted in network Effect protection.Legacy network devices are inadequate to the protecting data encryption of communication, suitable for application in the higher work of information security demand In industry information network.And administrative staff's human configuration key is generally required in current industrial information network, there are human factors Hidden danger of divulging a secret.
The content of the invention
The present invention needs human configuration management, legacy network devices pair for key present in current industrial information network The problem of encryption of communicated data protection is inadequate provides a kind of based on the encrypted industry internet communication encryption side of dynamic random Method.
It is provided by the invention to be based on the encrypted industry internet communication encryption method of dynamic random, using dynamic random mode Key is generated, is specifically included:
In communication both ends clocked flip dynamic key production process;
Both ends communicate in locally generated random number, and carries out random number exchange, is owned by communication both ends locally generated The random number that random number and other side generate;
Both ends communicate according to two random numbers, by key schedule, generates identical key;
Both ends communicate in communication process, AES (Advanced are carried out using identical key to data message Encryption Standard) encryption and decryption.
The advantages and positive effects of the present invention are:
(1) the method for the present invention by randomly generating, dynamic interaction, the cipher key calculation method locally generated so that key without Human configuration management is needed, effectively prevents the key leakage hidden danger that human factor is brought;
(2) the method for the present invention makes communication both ends (client and server end) in the case where that need not exchange key, realizes Coded communication, so as to effectively reduce the security risk brought in network transmission cipher key processes.
Description of the drawings
Fig. 1 is the signal of the realization process based on the encrypted industry internet communication encryption method of dynamic random of the present invention Figure.
Specific embodiment
The present invention is described in detail with reference to the accompanying drawings and examples.
It is provided by the invention a kind of based on the encrypted industry internet communication encryption method of dynamic random, as shown in Figure 1, bag 4 key links are included, are clocked flip respectively, random number is generated with exchanging, key generates, data encrypting and deciphering.It is explained in detail below each A link.
Step 1, clocked flip.Using a software timer, according to the cycle of setting, timing performs key and generated Journey, dynamic change the key at communication both ends.
Step 2, random number is generated with exchanging.Client using Generating Random Number, generates random number first, and will production Server end occurs for raw random number, the random number that server end to be received is waited to return;Received server-side to client with After machine number, using Generating Random Number, random number is generated, and the random number of generation is occurred to client.
The cycle and the time of exchange random number that random number generates can manually preset.
Step 3, key generates.Communication both ends are respectively using the random of locally generated random number and the other side that receives Number produces algorithm according to identical key, calculates and generate identical key.
Since key uses two generating random numbers of communication two party timing generation, the security of key can be effectively improved.
In the embodiment of the present invention, two random numbers and key are generated as follows:
(1) random number generates:Random number is generated using the random function in standard C storehouses.
(2) key generates:It is raw by exclusive or, same or with linear feedback shift operator combination using 2 random numbers Into key.
Step 4, data encrypting and deciphering.Communication both ends using identical key to respectively to the data message that sends and receives into Row AES encryption and decryption.
Dynamic key is periodically generated in communication process by above-mentioned steps, key is without human configuration management, by network Terminal device carries out automatically, the key leakage hidden danger that human factor is avoided to bring, and reduces in network transmission cipher key processes The security risk brought.

Claims (2)

1. one kind is based on the encrypted industry internet communication encryption method of dynamic random, which is characterized in that including:
In communication both ends clocked flip dynamic key production process;
Both ends communicate in locally generated random number, and carries out random number exchange, is owned by communication both ends locally generated random The random number that number and other side generate;
Both ends communicate according to two random numbers, by key schedule, generates identical key;
Both ends communicate in communication process, AES encryption and decryption is carried out using identical key to data message;AES represents advanced and adds Data Encryption Standard.
2. according to the method described in claim 1, it is characterized in that, the communication both ends in locally generated random number, wherein Client uses Generating Random Number, generates random number, and the random number of generation is issued server end, waits service to be received Hold the random number returned;After server-side receives the random number of client, using Generating Random Number, random number is generated, And the random number of generation is sent to client.
CN201711416190.5A 2017-12-25 2017-12-25 One kind is based on the encrypted industry internet communication encryption method of dynamic random Pending CN108111308A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201711416190.5A CN108111308A (en) 2017-12-25 2017-12-25 One kind is based on the encrypted industry internet communication encryption method of dynamic random

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201711416190.5A CN108111308A (en) 2017-12-25 2017-12-25 One kind is based on the encrypted industry internet communication encryption method of dynamic random

Publications (1)

Publication Number Publication Date
CN108111308A true CN108111308A (en) 2018-06-01

Family

ID=62212688

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201711416190.5A Pending CN108111308A (en) 2017-12-25 2017-12-25 One kind is based on the encrypted industry internet communication encryption method of dynamic random

Country Status (1)

Country Link
CN (1) CN108111308A (en)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109168162A (en) * 2018-11-20 2019-01-08 北京千丁互联科技有限公司 Bluetooth communication encryption method, device and intelligent security guard equipment
CN109361509A (en) * 2018-10-25 2019-02-19 杭州隐知科技有限公司 A kind of random digit generation method, device and storage medium
CN110138736A (en) * 2019-04-11 2019-08-16 泉州信息工程学院 Internet of things multiple dynamic random encryption identity authentication method, device and equipment
CN111726362A (en) * 2020-06-23 2020-09-29 广东博智林机器人有限公司 Information transmission method, information transmission system, first device and second device
CN115664648A (en) * 2022-10-17 2023-01-31 山东新一代信息产业技术研究院有限公司 Dynamic key generation method without manual input in IROS

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20070136057A1 (en) * 2005-12-14 2007-06-14 Phillips Desmond K Preamble detection
CN103529823A (en) * 2013-10-17 2014-01-22 北奔重型汽车集团有限公司 Security access control method for vehicle diagnosis system
CN107040536A (en) * 2017-04-10 2017-08-11 北京德威特继保自动化科技股份有限公司 Data ciphering method, device and system
CN107155184A (en) * 2017-07-17 2017-09-12 深圳市安林克斯智能科技有限公司 A kind of WIFI module and its communication means with security encryption chip

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20070136057A1 (en) * 2005-12-14 2007-06-14 Phillips Desmond K Preamble detection
CN103529823A (en) * 2013-10-17 2014-01-22 北奔重型汽车集团有限公司 Security access control method for vehicle diagnosis system
CN107040536A (en) * 2017-04-10 2017-08-11 北京德威特继保自动化科技股份有限公司 Data ciphering method, device and system
CN107155184A (en) * 2017-07-17 2017-09-12 深圳市安林克斯智能科技有限公司 A kind of WIFI module and its communication means with security encryption chip

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109361509A (en) * 2018-10-25 2019-02-19 杭州隐知科技有限公司 A kind of random digit generation method, device and storage medium
CN109168162A (en) * 2018-11-20 2019-01-08 北京千丁互联科技有限公司 Bluetooth communication encryption method, device and intelligent security guard equipment
CN109168162B (en) * 2018-11-20 2021-09-21 北京千丁互联科技有限公司 Bluetooth communication encryption method and device and intelligent security equipment
CN110138736A (en) * 2019-04-11 2019-08-16 泉州信息工程学院 Internet of things multiple dynamic random encryption identity authentication method, device and equipment
CN110138736B (en) * 2019-04-11 2022-05-13 泉州信息工程学院 Identity authentication method, device and equipment for multiple dynamic random encryption of Internet of things
CN111726362A (en) * 2020-06-23 2020-09-29 广东博智林机器人有限公司 Information transmission method, information transmission system, first device and second device
CN115664648A (en) * 2022-10-17 2023-01-31 山东新一代信息产业技术研究院有限公司 Dynamic key generation method without manual input in IROS

Similar Documents

Publication Publication Date Title
CN108111308A (en) One kind is based on the encrypted industry internet communication encryption method of dynamic random
CN104158653B (en) A kind of safety communicating method based on the close algorithm of business
CN105049401B (en) A kind of safety communicating method based on intelligent vehicle
CN103905187B (en) A kind of network service encryption method based on content
CN108768930A (en) A kind of encrypted transmission method of data
CN103401678A (en) Method for ensuring data transmission safety of Internet of things
CN105262772A (en) Data transmission method, data transmission system and related apparatus for data transmission method and system
CN108123794A (en) The generation method and encryption method of whitepack key, apparatus and system
CN103634266B (en) A bidirectional authentication method for a server and a terminal
US6640303B1 (en) System and method for encryption using transparent keys
CN111490871A (en) SM9 key authentication method and system based on quantum key cloud and storage medium
Jabeen et al. A lightweight genetic based algorithm for data security in wireless body area networks
CN101808089A (en) Secret data transmission protection method based on isomorphism of asymmetrical encryption algorithm
CN112740615A (en) Multi-party computed key management
CN106330432A (en) DES encryption algorithm based encryption method
CN102355353A (en) Encrypted input method and encrypted communication method and device
CN105262586B (en) The method for distributing key and device of automobile burglar equipment
CN107070642A (en) Multi-brand cipher machine heterogeneous resource pond multiplexing technology
CN101867471A (en) Irrational number based DES authentication encryption algorithm
CN103354637B (en) A kind of internet-of-things terminal M2M communication encrypting method
CN102281303A (en) Data exchange method
CN107659405B (en) The encrypting and decrypting method of data communication between a kind of substation boss station
CN102624892A (en) Method for preventing plug-in client from simulating hyper text transmission protocol (HTTP) request
CN107493287A (en) Industry control network data security system
CN105471849A (en) Security control method for data exchange service and transmission process

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
WD01 Invention patent application deemed withdrawn after publication

Application publication date: 20180601

WD01 Invention patent application deemed withdrawn after publication